Re: Trojan horse Downloader.Generic.ML
From: Ron Reaugh (ron-reaugh_at_worldnet.att.net)
Date: Tue, 21 Jun 2005 17:05:01 GMT
"Zvi Netiv" <support@replace_with_domain.com> wrote in message
> "Ron Reaugh" <email@example.com> wrote:
> > "Zvi Netiv" <support@replace_with_domain.com> wrote
> > > I tend to agree with Ron, that the smoke is from a gun, but he failed
> > > evidence that will help exposing that gun. Without it, what we have
> > > more than the evidence that there were WMD in Iraq on the eve of the
> > > War. What we need is info on what creates the NULL file and how, and
the way to
> > > obtain it is by replicating its creation, under controlled conditions.
> > > Ron is wasting his time (and ours) in reiterating already exhausted
> > NO, AVG is my expert. AVG flagged it. AVG may have detected virus
> > activity and/or now considers THAT file to be a nasty. AVG's
> > the evidence.
> > The is no evidence that AVG made an error. In fact all the evidence
> > suggests that AVG performed admirably.
> You certainly fooled me. I see now that I misunderstood your original
> Quoting from:
> "So where and how did this file C:\NULL that AVG claims is Trojan horse
> Downloader.Generic.ML appear from? Was it really there since 5/5 but went
> unnoticed ... OR did something penetrate all the firewalls and suddenly
> this file ... What likely happened here?"
Precisely, exactly. All that confirms my position from the beginning. All
your posts seem to confirm the fact that there's substantial evidence that
AVG reported at least the smoke of the smoking gun. Ergo the claim that
there was some completely false positive report is grossly misleading. The
evidence is that AVG reported a true positive.